Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

'BadTunnel' Bugs Left Every Microsoft Windows PC Vulnerable For 20 Years
Forbes ^ | Jun 14, 2016 @ 01:00 PM | Thomas Fox-Brewster

Posted on 06/15/2016 6:01:38 PM PDT by Utilizer

Microsoft is today closing off a vulnerability that one Chinese researcher claims has “probably the widest impact in the history of Windows.” Every version of the Microsoft operating system going back to Windows 95 is affected, leaving anyone still running unsupported operating systems, such as XP, in danger of being surreptitiously surveilled.

According to Yang Yu, founder of Tencent’s Xuanwu Lab, the bug can be exploited silently with a “near-perfect success rate”, as the problems lie in the design of Windows. The ultimate impact? An attacker can hijack all a target’s web use, granting the hacker ”Big Brother power”, as soon as the victim opens a link or plugs in a USB stick, claimed Yu. He received $50,000 from Microsoft’s bug bounty program for uncovering the weakness, which the researcher has dubbed BadTunnel. Microsoft issued a fix today in its Patch Tuesday list of updates.

“Even security software equipped with active defense mechanisms are not able to detect the attack,” Yu told FORBES. “Of course it is capable of execute malicious code on the target system if required.”

Yu, who is one of only three ever recipients of more than $100,000 Microsoft bounty, said there are myriad ways a hacker could exploit the flaw. “This vulnerability can be exploited through Edge, Internet Explorer, Microsoft Office and many other third-party software on Windows,” Yu added. “It can also be exploited through web servers … or even through thumb drives – insert the thumb drive into one of the ports on the system and the exploitation is complete.”

(Excerpt) Read more at forbes.com ...


TOPICS: Business/Economy; Computers/Internet
KEYWORDS: malware; microsoft; security; windows; windoze
Navigation: use the links below to view more comments.
first 1-2021-4041-46 next last
Historical and still dangersous...
1 posted on 06/15/2016 6:01:38 PM PDT by Utilizer
[ Post Reply | Private Reply | View Replies]

To: Utilizer; Lazamataz; ShadowAce; Swordmaker
Historical and still dangersous...

Guys, some of you tangle with windows users, and some of you (I think) have worked on government contracts. There are all kinds of govt. computers which rely on old software due to budget constraints.

I thought I read once that our Aegis cruisers were running on Windows ME. Even if it was entirely a joke, such a thing is too horrible to contemplate.

2 posted on 06/15/2016 6:17:40 PM PDT by grey_whiskers (The opinions are solely those of the author and are subject to change without notice.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

I miss DOS


3 posted on 06/15/2016 6:18:09 PM PDT by This_far
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

I’m going to link to this thread from the one I posted earlier today on the Patch Tuesday updates, since one of those updates fixes this bug.


4 posted on 06/15/2016 6:21:29 PM PDT by dayglored ("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

Problem is, even manual/custom updates will attempt to download the dreaded Windows 10 nagware.

MS really needs to stop letting the marketing dept run the security dept.


5 posted on 06/15/2016 6:36:31 PM PDT by relictele (Principiis obsta & Finem respice - Resist The Beginnings & Consider The Ends.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer
You can stop it by turning off NetBIOS over TCP/IP.

I don't think there is any need for any form of NetBIOS to be connected to your network adapter settings, any more.

http://www.darkreading.com/vulnerabilities-—threats/windows-badtunnel-attack-hijacks-network-traffic/d/d-id/1325875

6 posted on 06/15/2016 6:38:21 PM PDT by ConservativeMind ("Humane" = "Don't pen up pets or eat meat, but allow infanticide, abortion, and euthanasia.")
[ Post Reply | Private Reply | To 1 | View Replies]

To: grey_whiskers

Some of us have done both, mate. As far as running WinMD (joke) on our cruisers... without revealing any confidential data I am informed that they run a very specialized version of ‘doze (or DOS, depending upon the need) but the civilian equivalent is nowhere near what they do run. So, some dangers do exist but there are protocols in place to mitigate any danger.

Anything other than that readily-available information would be pure speculation on anyone’s part, and there are severe penalties for any person fool enough to discuss our Military’s operational capabilities and practices.

Mrs. Bill’s poor example of security not withstanding.

I will add for the record that I, of course, have no idea whatsoever what the military does run at any time so any fedgov pukes lurking about need have no worries in that regard.


7 posted on 06/15/2016 6:46:15 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 2 | View Replies]

To: ConservativeMind

Some corp networks still utilize some NetBios functions like WoL, but I agree that a normal user should leave it disabled.


8 posted on 06/15/2016 6:46:53 PM PDT by miliantnutcase
[ Post Reply | Private Reply | To 6 | View Replies]

To: This_far

I as well. I resisted for the longest time migrating to the ‘doze environment since it was so bloated and sluggish. It seems that there are still some issues that need to be worked out to this day.


9 posted on 06/15/2016 6:47:45 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Utilizer

(as long as we can reminisce) A group of like minded, but with varied skills would gather on Saturdays.

We never thought ‘computers’ would go anywhere and constantly disparaged that new Microsoft (stole Dos) thing.

Could have bought at $18 share. (yeah, then all the way up to around $75 when we said ... oops).


10 posted on 06/15/2016 6:56:23 PM PDT by This_far
[ Post Reply | Private Reply | To 9 | View Replies]

To: dayglored

Good idea, mate, and glad to see you on this thread. Hope you and others find it useful, no doubt.


11 posted on 06/15/2016 7:00:42 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 4 | View Replies]

To: relictele

It could be worse. For instance, I recently acquired a refurb win7 machine for research purposes with w7Home preinstalled and with the valid (I assume) SerNo and RegNo stickers attached from a recognized Microsoft Refurb Agency... and upon bootup the machine promptly stated that it needed to be connected to the internet to validate the installed copy of Win7 or a number needed to be called to speak to a MS rep and get a valid CertNo to verify the installed version or the machine would cease functioning in 30 days.

Needless to say, I was quite displeased. So if I need to use the machine after any given 30-day period I need to reinstall the OS or it simply sits there upon boot-up.

NOT what I bargained for, and I think we are fortunate that MS has not yet done the same thing for anyone who does not install their vaunted “upgrade”.

Then again, it may be only a matter of time...


12 posted on 06/15/2016 7:08:51 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 5 | View Replies]

To: ConservativeMind

” turning off NetBIOS over TCP/IP”

I remember doing that- on advice -back in W3!


13 posted on 06/15/2016 7:09:20 PM PDT by mrsmith (Dumb sluts: Lifeblood of the Media, Backbone of the Democrat/RINO Party!)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Utilizer
Every version of the Microsoft operating system going back to Windows 95 is affected

Phew, my Windows 2.1 is fine.
14 posted on 06/15/2016 7:13:17 PM PDT by ronnietherocket3 (Mary is understood by the heart, not study of scripture.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: grey_whiskers
I thought I read once that our Aegis cruisers were running on Windows ME. Even if it was entirely a joke, such a thing is too horrible to contemplate.

It gets even worse than that :

US military uses 8-inch floppy disks to coordinate nuclear force operations

15 posted on 06/15/2016 7:19:55 PM PDT by TheCipher (Suppose you were an idiot and suppose you were a member of Congress. But I repeat myself. Mark Twain)
[ Post Reply | Private Reply | To 2 | View Replies]

To: This_far

“I miss DOS”

yeah, the great thing about DOS was it couldn’t be connected to the Internet, so it was totally hackproof, not to mention it would be pointless to hack a device that couldn’t phone home.

Also, DOS was good for writing snail-mail letters and any other task whose results you could print on paper and put in a filing cabinet.


16 posted on 06/15/2016 7:27:55 PM PDT by catnipman (Cat Nipman: Vote Republican in 2012 and only be called racist one more time!)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Utilizer

here’s the correct link:

http://www.forbes.com/sites/thomasbrewster/2016/06/14/microsoft-badtunnel-big-brother-windows-vulnerability/#bcd0b905c642


17 posted on 06/15/2016 7:29:00 PM PDT by catnipman (Cat Nipman: Vote Republican in 2012 and only be called racist one more time!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: This_far

*laugh* You might be surprised at how many coders I know to this day who STILL hate little Billy Gates and his “proprietary” code, and openly sneer at how he not only blatantly stole the whole GUI concept entirely and got away with it, but as the years progressed when any other great program would come out he would either try to produce an equivalent product and then muscle them out of the market or outright buy them out and either remarket it as an MS product or sit on it to make it disappear.

I was forced to switch to ‘doze at the 3.1-3.11 transitional level since the new workplace demanded it, but I (and we) were never too thrilled about it.

Now so many things are ‘doze-dependent and malware has become a constant concern.

It’s a whole new Matrix. :)


18 posted on 06/15/2016 7:30:25 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 10 | View Replies]

To: sauropod

.


19 posted on 06/15/2016 7:30:35 PM PDT by sauropod (Beware the fury of a patient man.)
[ Post Reply | Private Reply | To 8 | View Replies]

To: Admin Moderator

Somehow, the link I originally posted for this thread no longer points to the correct article, I am not certain why.

Please change the pointers in the beginning of the thread to point to where the article is currently:

http://www.forbes.com/sites/thomasbrewster/2016/06/14/microsoft-badtunnel-big-brother-windows-vulnerability/#43c0c44f5c64

Thanks in advance.


20 posted on 06/15/2016 7:35:36 PM PDT by Utilizer (Bacon A'kbar! - In world today are only peaceful people, and the muzrims trying to kill them)
[ Post Reply | Private Reply | To 1 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-4041-46 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson